$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer File: E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer (raw, json) Hash identifier: tC9EkMQ6gOtdaTN2l6iLOMiH4G5TzcsKd5R4a4qkTj8= Subject key identifier: E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 43DC5ED457E6112C07BB73A7BB0F213B9947E3C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.mft caRepository: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 30 May 2025 21:14:24 +0000 Certificate not after: Fri 29 May 2026 21:19:24 +0000 Subordinate resources: IP: 103.173.140.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:dc:5e:d4:57:e6:11:2c:07:bb:73:a7:bb:0f:21:3b:99:47:e3:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 30 21:14:24 2025 GMT Not After : May 29 21:19:24 2026 GMT Subject: CN=E35DA07B114BD42901F7C1DB8E684E995E2E4433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4a:6c:b5:07:0f:3a:78:8f:13:d4:bf:0c:07: 0e:a7:56:0b:ab:ca:4f:71:73:7a:54:53:2d:30:2b: 21:dc:df:39:f5:d5:bd:8f:b4:8e:7d:68:1c:b1:ef: 7b:c4:f0:55:58:06:7e:96:3a:14:de:21:bc:88:57: ff:83:62:37:15:5a:ed:ea:8b:e3:07:c1:da:ea:1b: 05:7a:13:cd:65:4a:5d:46:78:64:63:93:9e:b8:70: a3:13:f6:3f:38:70:81:75:3e:cf:1a:ea:83:6e:f6: ca:f2:fe:ff:ab:d6:b1:56:d6:75:98:3d:09:12:0b: 49:78:4f:d6:24:ab:ae:5b:75:17:0e:26:24:26:8f: 3b:22:ee:13:6e:61:6a:57:dc:6a:76:36:84:c3:08: e8:45:14:af:b1:5f:33:3c:d7:06:6a:5f:70:8b:f5: 21:f5:84:7a:f5:e0:55:ec:22:92:c8:e7:f1:d1:9d: bb:b7:44:5f:6e:bd:7b:03:58:f8:ce:4d:3b:ea:10: 1b:73:29:bb:bd:0c:b7:26:d0:24:6a:73:b4:0d:8d: e3:87:0d:af:dc:42:a8:2e:07:30:86:9e:47:8a:05: bc:91:96:e9:77:66:69:69:29:f9:b0:26:3b:28:88: 4e:17:e7:82:28:e6:e6:6e:4a:fa:a2:18:48:a1:ce: f0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.140.0/23 Signature Algorithm: sha256WithRSAEncryption 34:ef:b0:67:25:43:08:73:b2:c1:56:54:59:35:d8:d3:9d:e1: 35:72:65:37:c3:34:4a:97:1a:de:80:73:8d:66:50:b4:64:a9: ca:67:18:9e:42:93:38:27:3b:d4:b7:20:a5:5a:a9:d7:ff:26: 76:57:8c:04:5e:6c:d6:11:4c:af:12:14:db:b1:74:9b:87:47: d5:c0:2f:8d:44:77:7e:8b:33:f7:75:49:a7:07:58:59:f6:14: 34:0f:58:0e:78:46:bf:26:4e:19:a1:65:ae:a3:a1:f3:24:0c: 3e:36:44:03:c9:14:3e:af:06:ea:bd:b6:30:c7:89:55:33:f6: be:ba:dc:dc:7c:4d:30:87:70:f3:f8:7c:eb:ba:89:71:7c:31: 45:69:38:b1:3f:60:b0:22:3b:a9:4f:d9:67:2b:a6:d8:05:48: 77:f1:26:e2:9e:ed:3a:43:87:00:e9:a8:a5:1d:32:e7:f1:1f: ee:84:05:4d:f7:19:a6:c9:b2:7b:38:27:7b:3e:51:5e:88:5d: 8a:2b:6a:03:03:ea:c1:d2:9d:4d:e2:ab:c1:4e:02:af:54:9b: 93:f8:f2:46:d4:89:49:be:cf:e8:34:02:ed:d7:78:16:67:59: cc:69:6c:32:50:72:2f:8d:00:d4:cf:eb:29:8e:6f:55:69:bc: 25:85:fc:1d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQ9xe1FfmESwHu3Onuw8hO5lH48kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUzMDIxMTQyNFoX DTI2MDUyOTIxMTkyNFowMzExMC8GA1UEAxMoRTM1REEwN0IxMTRCRDQyOTAxRjdD MURCOEU2ODRFOTk1RTJFNDQzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1KbLUHDzp4jxPUvwwHDqdWC6vKT3FzelRTLTArIdzfOfXVvY+0jn1oHLHv e8TwVVgGfpY6FN4hvIhX/4NiNxVa7eqL4wfB2uobBXoTzWVKXUZ4ZGOTnrhwoxP2 PzhwgXU+zxrqg272yvL+/6vWsVbWdZg9CRILSXhP1iSrrlt1Fw4mJCaPOyLuE25h alfcanY2hMMI6EUUr7FfMzzXBmpfcIv1IfWEevXgVewiksjn8dGdu7dEX269ewNY +M5NO+oQG3Mpu70MtybQJGpztA2N44cNr9xCqC4HMIaeR4oFvJGW6XdmaWkp+bAm OyiIThfngijm5m5K+qIYSKHO8FsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFONdoHsRS9QpAffB245oTpleLkQzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hYWFiYjU3OC1iOWRiLTRhNDctOGQ3ZS0xMWE2MzQyODkwMTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYWJiNTc4 LWI5ZGItNGE0Ny04ZDdlLTExYTYzNDI4OTAxOC8wL0UzNURBMDdCMTE0QkQ0Mjkw MUY3QzFEQjhFNjg0RTk5NUUyRTQ0MzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrYwwDQYJKoZIhvcNAQELBQADggEBADTvsGclQwhzssFWVFk12NOd4TVyZTfD NEqXGt6Ac41mULRkqcpnGJ5CkzgnO9S3IKVaqdf/JnZXjARebNYRTK8SFNuxdJuH R9XAL41Ed36LM/d1SacHWFn2FDQPWA54Rr8mThmhZa6jofMkDD42RAPJFD6vBuq9 tjDHiVUz9r663Nx8TTCHcPP4fOu6iXF8MUVpOLE/YLAiO6lP2WcrptgFSHfxJuKe 7TpDhwDpqKUdMufxH+6EBU33GabJsns4J3s+UV6IXYoragMD6sHSnU3iq8FOAq9U m5P48kbUiUm+z+g0Au3XeBZnWcxpbDJQci+NANTP6ymOb1VpvCWF/B0= -----END CERTIFICATE-----Generated at Wed Jun 4 00:08:52 2025 by rpki-client